Ureader.com  
Microsoft software help and Community
   home   |   control panel login   |   archive   |  
 
platform
active.directory
adsi
adsi.iis-admin
base
com_ole
complus_mts
component_svcs
database
directx
gdi
graphics_mm
internet.client
internet.server
internet.server.isapi-dev
localization
mapi
messaging
msi
mslayerforunicode
multimedia
networking
networking.ipv6
sdk_install
security
shell
telephony.tapi_2
telephony.tapi_3
telephony.tsp
telephony.wte
tools
ui
ui_shell
win_base_svcs
win16
  
 
date: Thu, 5 Jun 2008 05:26:53 -0700 (PDT),    group: microsoft.public.platformsdk.security        back       


CSP Development: Can't log on mu    
Hello everyone,

I have recently taken over a CSP project. For the last week, I've been
trying to fix a bug that popped up when using the CSP with Windows
Vista. I can log on using a SmartCard only once. After I log off and
then try to log on again, the logon fails. In the EventLog, I get a
4642 log that respresents the first successful logon, then a 4647 that
represents the logoff, and finally a 4625 log that indicates the
failed logon attempt. The Security ID in the log is NULL SID, which
implies an invalid account name.

Does anyone recognize this kind of problem?

Thanks in advance,
Marek
date: Thu, 5 Jun 2008 05:26:53 -0700 (PDT)   author:   unknown

RE: CSP Development: Can't log on mu    
Hi,

The information you gave are insufficient. For this kind of problems, you 
should trace all the calls made to your CSP along with the input/output 
parameters, the returned status and the GetLastError result. Once you have 
these, it will be easy for you to understand what's causing the logon failure.

Cheers,
-- 
Mounir IDRASSI
IDRIX
http://www.idrix.fr

to reach : mounir_idrix_fr (replace the underscores with the at and dot 
characters respectively)


"m.pawlak@wasko.pl" wrote:

> Hello everyone,
> 
> I have recently taken over a CSP project. For the last week, I've been
> trying to fix a bug that popped up when using the CSP with Windows
> Vista. I can log on using a SmartCard only once. After I log off and
> then try to log on again, the logon fails. In the EventLog, I get a
> 4642 log that respresents the first successful logon, then a 4647 that
> represents the logoff, and finally a 4625 log that indicates the
> failed logon attempt. The Security ID in the log is NULL SID, which
> implies an invalid account name.
> 
> Does anyone recognize this kind of problem?
> 
> Thanks in advance,
> Marek
>
date: Thu, 5 Jun 2008 07:39:01 -0700   author:   Mounir IDRASSI am

Re: CSP Development: Can't log on mu    
Thank you Mounir. I had to work on a different project for a while but
I finally got a chance to come back to my CSP. I produced some logs to
trace the calls to my CSP. I noticed that CPGetProvParam gets called
several times with flags PP_USER_CERTSTORE and PP_ROOT_CERTSTORE,
which are characteristic for Vista only. In my CPGetProvParam, I set
last error to E_NOTIMPL for these calls and return FALSE. This does
not seem to be the problem because I fail to log on only on the thrird
attempt, adn CPGetProvParam gets also called in the first two
successful logon attempts.

I am wondering if I am missing on some clean up. In windows 2000 I
noticed that the workstation gets locked when I remove the card from
the reader. However, on Vista I can remove the card and continue using
the system...

For the time beeing, I always fail to log on on the third attempt and
need to reboot to log on again using the smart card.

Any guesses?

Thanks,
Marek
date: Tue, 10 Jun 2008 03:54:19 -0700 (PDT)   author:   unknown

Re: CSP Development: Can't log on mu    
I have been also able to determine that on the unsuccessful logon
attempt a function from the PKCS#11 library used in my CSP returns
TOKEN_NOT_RECOGNIZED (The Cryptoki library and/or slot does not
recognize the token in the slot). I am trying to find out why

Cheers,
Marek
date: Tue, 10 Jun 2008 04:22:42 -0700 (PDT)   author:   unknown

Google
 
Web ureader.com


    COPYRIGHT 2007, YARDI TECHNOLOGY LIMITED, ALL RIGHT RESERVE  |   contact us